Description

An improper file signature check in Palo Alto Networks Cortex XDR agent may allow an attacker to bypass the Cortex XDR agent's executable blocking capabilities and run untrusted executables on the device. This issue can be leveraged to execute untrusted software without being detected or blocked.

Related CPE's

Could not find any relations

References

https://security.paloaltonetworks.com/CVE-2024-5912

https://security.paloaltonetworks.com/CVE-2024-5912

Weaknesses

[email protected]

Secondary
CWE-347

CVSS impact metrics

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:C/RE:M/U:Amber

6.8 · Medium

Information

Source identifier

[email protected]

Vulnerability status

Awaiting analysis

Published

2024-07-10T17:15:11.697Z

1 year ago

Last modified

2024-11-21T08:48:34.157Z

1 year ago